Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Generic code signing client with downloadable modules

a technology of downloadable modules and signing clients, applied in the field of system and method of signing data, can solve problems such as compromising all data (including user's private information), data may be from an unauthorized source, and negatively affecting the operation of the devi

Active Publication Date: 2020-06-11
ARRIS ENTERPRISES LLC
View PDF0 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

The present invention provides a method and apparatus for signing software images. The method involves accepting a request to sign a software image, transmitting a module request to a signing system, receiving the module and at least a subset of configuration parameters for executing the module from the signing system, executing at least a subset of the operations of the module on the software image according to the at least a subset of the configuration parameters to generate a modified software image, generating a hash of the modified software image, transmitting a signing request to the signing system, and receiving a signature generated from the modified software image. The apparatus includes a processor and memory for performing the foregoing operations. The technical effect of this invention is to provide a more efficient and streamlined process for signing software images.

Problems solved by technology

One of the problems with the remote downloading of such data to fielded devices is that the data may be from an unauthorized source.
An entity providing the data to the fielded devices may pose as a legitimate source of the data, yet provide data that is designed to compromise the security or functionality of the device.
If the user downloads and installs the software update from the bogus URL, the code that is actually downloaded may include a virus or other malware that negatively affects the operation of the device, perhaps compromising all of the data (including the user's private information) that was stored by the device before the infected.
When the software image size is large, this process is time consuming and the transmission may be interrupted if the communication link is unreliable.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Generic code signing client with downloadable modules
  • Generic code signing client with downloadable modules
  • Generic code signing client with downloadable modules

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022]In the following description, reference is made to the accompanying drawings which form a part hereof, and which is shown, by way of illustration, several embodiments of the present invention. It is understood that other embodiments may be utilized and structural changes may be made without departing from the scope of the present invention.

Overview

[0023]Disclosed below is an online code signing system (OCSS) that supports standard code signing formats such as PKCS #1, PKCS #7 and other proprietary signing mechanisms. The OCSS also performs operations such as code encryption and decryption.

[0024]The OCSS offers a web portal for users to login and sign code images or other types of digital objects, generate digital signatures, encrypt code, and / or decrypt code manually and a web service interface for machine clients to do so programmatically. In order to provide such an automatic mechanism to sign code, a machine-to-machine interface is provided over Internet such that the Clien...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

A method for signing data such as software images is provided that uses modules executable by a generic client to sign hashes of the software images rather than the images themselves. The method avoids both the requirement for new or updated client software and the uploading of full software images to the signing system. This approach uses a generic client that requests and downloads processing modules from the signing system to perform the pre-processing operations in signing software images, as well as optionally for post-processing operations.

Description

BACKGROUND1. Field of the Invention[0001]The present invention relates to systems and methods for signing data for use on devices, and in particular to a system and method for providing generic entity and user access management of code signing services.2. Description of the Related Art[0002]It is beneficial in some circumstances to provide data to devices which have already been distributed to end users (e.g. fielded devices). Such data may be needed to update the device(s) to newer configurations or to perform additional functions, to ameliorate software “bugs” or other issues, or to simply replace data already resident in the device that may have been compromised. Such data may include software instructions (e.g. code) update fielded devices by providing data such as software code to those devices remotely.[0003]One of the problems with the remote downloading of such data to fielded devices is that the data may be from an unauthorized source. An entity providing the data to the fi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/32
CPCH04L9/3268H04L9/3247H04L9/3213H04L9/3273H04L9/3234H04L63/123G06F8/65H04L63/0823G06F8/63
Inventor CHAN, TAT KEUNGYAO, TINGPASION, JASON A.
Owner ARRIS ENTERPRISES LLC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products